$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: QUS/7keELseRFgbN7lmouuIt6PgO0T49txzUJvGchoU= Subject key identifier: CD:AD:AF:39:9A:62:1F:5C:9A:FC:6B:47:DB:D7:6B:33:A7:00:24:03 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1D4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1D41 Signing time: Thu 18 Sep 2025 16:14:30 +0000 Manifest this update: Thu 18 Sep 2025 16:14:29 +0000 Manifest next update: Thu 25 Sep 2025 16:14:29 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: IYlz8fIdGbd4J55Hklg+h5JrilfwpixSYmUywKlBITY=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: XU2BtSx1XPF+OETuBQTO4A3xSlkRLbVqfxk4yTT8ml4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7500 (0x1d4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B, serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: Sep 18 16:14:29 2025 GMT Not After : Sep 25 16:14:29 2025 GMT Subject: CN=68cc2fe5-e3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:97:f2:67:2d:69:4c:28:07:cd:fb:d1:e3:4d: 84:22:a5:7e:d8:bd:e7:68:af:75:49:f8:c9:25:4f: c3:46:12:21:61:5b:94:42:4f:37:ca:ab:9c:c0:a1: 3f:81:e4:ef:17:97:f1:9d:06:39:ab:8a:95:53:4e: 06:32:32:1e:b3:1b:84:df:03:11:90:b2:ef:03:af: 77:6d:b3:bd:04:91:d2:36:e7:91:1b:98:fb:7e:af: 52:13:91:45:51:75:ab:81:2e:39:29:c0:40:b6:52: c1:35:a6:62:c5:3c:c2:40:ce:85:0b:e0:29:ad:15: 0e:58:b0:da:65:12:e4:9f:43:7b:29:84:55:4a:b7: c7:77:35:79:37:b1:f0:27:70:4b:ab:a5:3a:5c:d2: 6f:1a:fc:cf:14:a7:e9:70:40:7e:8d:c3:19:f9:4c: 0a:fa:e7:6e:90:9c:f4:58:e5:f8:81:34:a2:19:c8: 13:54:a0:e4:7b:e1:9a:41:b2:73:07:0f:55:c7:d8: ea:79:b9:bc:3e:33:a2:5b:0f:25:93:7f:62:aa:0b: 1e:bd:e3:74:2e:ed:f1:a9:ff:ba:74:3b:48:60:c4: 60:20:01:4b:5b:b3:4e:ec:b1:38:a1:24:29:06:12: f3:86:f0:28:e5:24:e6:69:a3:98:cb:44:83:93:64: 94:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AD:AF:39:9A:62:1F:5C:9A:FC:6B:47:DB:D7:6B:33:A7:00:24:03 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:1b:2b:c5:38:2b:d9:78:d4:54:fa:b2:cb:91:44:1f:ef:97: 02:f4:e9:a7:9c:5b:f9:54:ca:8d:5e:a0:40:c2:20:d9:87:08: 9b:76:13:98:85:85:4b:c9:0a:b1:c2:64:cf:a1:f8:b0:6a:a0: b1:1d:e4:43:c8:75:a3:3e:0f:40:c4:52:32:d1:85:2c:38:28: bb:82:f0:a3:0c:b7:b9:c4:3a:2f:0d:c1:46:1e:38:93:42:2a: 07:4e:3f:25:c2:78:21:23:d6:1d:ab:02:23:1a:67:53:88:e9: 87:36:24:09:50:b7:5e:3e:83:c8:44:c8:01:3a:ef:b2:4a:b2: 07:5f:5e:63:09:7c:97:cc:00:d4:1e:ce:e7:c7:5f:1f:6e:79: 7c:a2:36:3b:2a:d4:a3:4a:28:42:2b:60:a4:95:34:cd:50:fe: b0:90:a3:30:f4:6a:ed:7d:10:e5:de:9d:5f:dc:56:30:cf:c6: ee:f1:8a:98:12:6e:c4:94:84:6b:f7:f0:49:f0:2a:0b:e9:2f: c6:b0:72:99:91:29:4d:ff:34:36:20:c6:01:93:fc:23:67:ed: 71:30:48:ee:6f:7f:28:4f:cf:9d:4f:04:a0:49:ba:38:a3:a2: 26:64:d3:96:74:80:c7:bf:59:e8:38:57:f1:d4:68:a2:29:9b: a2:32:48:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjUwOTE4MTYxNDI5WhcNMjUwOTI1MTYxNDI5WjAYMRYwFAYD VQQDEw02OGNjMmZlNS1lM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJfyZy1pTCgHzfvR402EIqV+2L3naK91SfjJJU/DRhIhYVuUQk83yqucwKE/ geTvF5fxnQY5q4qVU04GMjIesxuE3wMRkLLvA693bbO9BJHSNueRG5j7fq9SE5FF UXWrgS45KcBAtlLBNaZixTzCQM6FC+AprRUOWLDaZRLkn0N7KYRVSrfHdzV5N7Hw J3BLq6U6XNJvGvzPFKfpcEB+jcMZ+UwK+udukJz0WOX4gTSiGcgTVKDke+GaQbJz Bw9Vx9jqebm8PjOiWw8lk39iqgseveN0Lu3xqf+6dDtIYMRgIAFLW7NO7LE4oSQp BhLzhvAo5STmaaOYy0SDk2SUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2trzma Yh9cmvxrR9vXazOnACQDMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqGyvFOCvZeNRU+rLLkUQf75cC9OmnnFv5VMqNXqBAwiDZhwibdhOY hYVLyQqxwmTPofiwaqCxHeRDyHWjPg9AxFIy0YUsOCi7gvCjDLe5xDovDcFGHjiT QioHTj8lwnghI9YdqwIjGmdTiOmHNiQJULdePoPIRMgBOu+ySrIHX15jCXyXzADU Hs7nx18fbnl8ojY7KtSjSihCK2CklTTNUP6wkKMw9GrtfRDl3p1f3FYwz8bu8YqY Em7ElIRr9/BJ8CoL6S/GsHKZkSlN/zQ2IMYBk/wjZ+1xMEjub38oT8+dTwSgSbo4 o6ImZNOWdIDHv1noOFfx1GiiKZuiMkhj -----END CERTIFICATE-----Generated at Fri Sep 19 00:47:00 2025 by rpki-client